Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:deb/debian/lighttpd@1.4.59-1%2Bdeb11u2
Typedeb
Namespacedebian
Namelighttpd
Version1.4.59-1+deb11u2
Qualifiers
Subpath
Is_vulnerablefalse
Next_non_vulnerable_versionnull
Latest_non_vulnerable_versionnull
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-8sn2-9v3z-5qd8
vulnerability_id VCID-8sn2-9v3z-5qd8
summary A vulnerability has been discovered in lighttpd which could result in denial of service.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-37797
reference_id
reference_type
scores
0
value 0.01444
scoring_system epss
scoring_elements 0.80775
published_at 2026-04-21T12:55:00Z
1
value 0.01444
scoring_system epss
scoring_elements 0.80772
published_at 2026-04-16T12:55:00Z
2
value 0.01444
scoring_system epss
scoring_elements 0.80773
published_at 2026-04-18T12:55:00Z
3
value 0.01444
scoring_system epss
scoring_elements 0.80687
published_at 2026-04-02T12:55:00Z
4
value 0.01444
scoring_system epss
scoring_elements 0.80709
published_at 2026-04-04T12:55:00Z
5
value 0.01444
scoring_system epss
scoring_elements 0.80704
published_at 2026-04-07T12:55:00Z
6
value 0.01444
scoring_system epss
scoring_elements 0.80733
published_at 2026-04-08T12:55:00Z
7
value 0.01444
scoring_system epss
scoring_elements 0.80742
published_at 2026-04-09T12:55:00Z
8
value 0.01444
scoring_system epss
scoring_elements 0.80758
published_at 2026-04-11T12:55:00Z
9
value 0.01444
scoring_system epss
scoring_elements 0.80743
published_at 2026-04-12T12:55:00Z
10
value 0.01444
scoring_system epss
scoring_elements 0.80736
published_at 2026-04-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-37797
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37797
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37797
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41556
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41556
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://security.archlinux.org/AVG-2822
reference_id AVG-2822
reference_type
scores
0
value Unknown
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2822
5
reference_url https://security.gentoo.org/glsa/202210-12
reference_id GLSA-202210-12
reference_type
scores
url https://security.gentoo.org/glsa/202210-12
fixed_packages
0
url pkg:deb/debian/lighttpd@1.4.59-1%2Bdeb11u2
purl pkg:deb/debian/lighttpd@1.4.59-1%2Bdeb11u2
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/lighttpd@1.4.59-1%252Bdeb11u2
aliases CVE-2022-37797
risk_score 1.9
exploitability 0.5
weighted_severity 3.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8sn2-9v3z-5qd8
1
url VCID-dj2j-yr1r-myej
vulnerability_id VCID-dj2j-yr1r-myej
summary A vulnerability has been discovered in lighttpd which could result in denial of service.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-41556
reference_id
reference_type
scores
0
value 0.01808
scoring_system epss
scoring_elements 0.82865
published_at 2026-04-21T12:55:00Z
1
value 0.01808
scoring_system epss
scoring_elements 0.82863
published_at 2026-04-16T12:55:00Z
2
value 0.01808
scoring_system epss
scoring_elements 0.82862
published_at 2026-04-18T12:55:00Z
3
value 0.01808
scoring_system epss
scoring_elements 0.82774
published_at 2026-04-02T12:55:00Z
4
value 0.01808
scoring_system epss
scoring_elements 0.82788
published_at 2026-04-04T12:55:00Z
5
value 0.01808
scoring_system epss
scoring_elements 0.82785
published_at 2026-04-07T12:55:00Z
6
value 0.01808
scoring_system epss
scoring_elements 0.82811
published_at 2026-04-08T12:55:00Z
7
value 0.01808
scoring_system epss
scoring_elements 0.82817
published_at 2026-04-09T12:55:00Z
8
value 0.01808
scoring_system epss
scoring_elements 0.82833
published_at 2026-04-11T12:55:00Z
9
value 0.01808
scoring_system epss
scoring_elements 0.82829
published_at 2026-04-12T12:55:00Z
10
value 0.01808
scoring_system epss
scoring_elements 0.82824
published_at 2026-04-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-41556
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37797
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37797
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41556
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41556
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://security.archlinux.org/AVG-2822
reference_id AVG-2822
reference_type
scores
0
value Unknown
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2822
5
reference_url https://security.gentoo.org/glsa/202210-12
reference_id GLSA-202210-12
reference_type
scores
url https://security.gentoo.org/glsa/202210-12
6
reference_url https://usn.ubuntu.com/5903-1/
reference_id USN-5903-1
reference_type
scores
url https://usn.ubuntu.com/5903-1/
fixed_packages
0
url pkg:deb/debian/lighttpd@1.4.59-1%2Bdeb11u2
purl pkg:deb/debian/lighttpd@1.4.59-1%2Bdeb11u2
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/lighttpd@1.4.59-1%252Bdeb11u2
aliases CVE-2022-41556
risk_score 1.5
exploitability 0.5
weighted_severity 3.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dj2j-yr1r-myej
2
url VCID-ma83-g8ra-47bd
vulnerability_id VCID-ma83-g8ra-47bd
summary Lighttpd 1.4.56 through 1.4.58 allows a remote attacker to cause a denial of service (CPU consumption from stuck connections) because connection_read_header_more in connections.c has a typo that disrupts use of multiple read operations on large headers.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-30780
reference_id
reference_type
scores
0
value 0.81817
scoring_system epss
scoring_elements 0.99194
published_at 2026-04-07T12:55:00Z
1
value 0.81817
scoring_system epss
scoring_elements 0.99188
published_at 2026-04-02T12:55:00Z
2
value 0.81817
scoring_system epss
scoring_elements 0.99191
published_at 2026-04-04T12:55:00Z
3
value 0.81817
scoring_system epss
scoring_elements 0.99199
published_at 2026-04-21T12:55:00Z
4
value 0.81817
scoring_system epss
scoring_elements 0.99196
published_at 2026-04-13T12:55:00Z
5
value 0.81817
scoring_system epss
scoring_elements 0.99197
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-30780
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-30780
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-30780
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
fixed_packages
0
url pkg:deb/debian/lighttpd@1.4.59-1%2Bdeb11u2
purl pkg:deb/debian/lighttpd@1.4.59-1%2Bdeb11u2
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/lighttpd@1.4.59-1%252Bdeb11u2
aliases CVE-2022-30780
risk_score 7.6
exploitability 2.0
weighted_severity 3.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ma83-g8ra-47bd
3
url VCID-nabb-9r87-mbhw
vulnerability_id VCID-nabb-9r87-mbhw
summary security update
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-22707
reference_id
reference_type
scores
0
value 0.01488
scoring_system epss
scoring_elements 0.8099
published_at 2026-04-02T12:55:00Z
1
value 0.01488
scoring_system epss
scoring_elements 0.81013
published_at 2026-04-04T12:55:00Z
2
value 0.01488
scoring_system epss
scoring_elements 0.81012
published_at 2026-04-07T12:55:00Z
3
value 0.01488
scoring_system epss
scoring_elements 0.8104
published_at 2026-04-08T12:55:00Z
4
value 0.01488
scoring_system epss
scoring_elements 0.81047
published_at 2026-04-09T12:55:00Z
5
value 0.01488
scoring_system epss
scoring_elements 0.81064
published_at 2026-04-11T12:55:00Z
6
value 0.01488
scoring_system epss
scoring_elements 0.81051
published_at 2026-04-12T12:55:00Z
7
value 0.01488
scoring_system epss
scoring_elements 0.81043
published_at 2026-04-13T12:55:00Z
8
value 0.01488
scoring_system epss
scoring_elements 0.81081
published_at 2026-04-16T12:55:00Z
9
value 0.01488
scoring_system epss
scoring_elements 0.81082
published_at 2026-04-18T12:55:00Z
10
value 0.01488
scoring_system epss
scoring_elements 0.81079
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-22707
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22707
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22707
2
reference_url https://usn.ubuntu.com/5903-1/
reference_id USN-5903-1
reference_type
scores
url https://usn.ubuntu.com/5903-1/
fixed_packages
0
url pkg:deb/debian/lighttpd@1.4.53-4%2Bdeb10u2
purl pkg:deb/debian/lighttpd@1.4.53-4%2Bdeb10u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8sn2-9v3z-5qd8
1
vulnerability VCID-dj2j-yr1r-myej
2
vulnerability VCID-ma83-g8ra-47bd
3
vulnerability VCID-nabb-9r87-mbhw
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/lighttpd@1.4.53-4%252Bdeb10u2
1
url pkg:deb/debian/lighttpd@1.4.59-1%2Bdeb11u2
purl pkg:deb/debian/lighttpd@1.4.59-1%2Bdeb11u2
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/lighttpd@1.4.59-1%252Bdeb11u2
aliases CVE-2022-22707
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nabb-9r87-mbhw
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:deb/debian/lighttpd@1.4.59-1%252Bdeb11u2